Exploit

Attack using vulnerability in software

An exploit is an attempt to take advantage of a flaw or vulnerability in an operating system or piece of software. Serious vulnerabilities, particularly when found in core parts of the system or in network-facing software such as browsers, can be exploited to allow attackers complete system access.

Many types of malware, particularly worms, use exploits to spread. Some of the most widespread worms, such as SQL/Slammer, have made use of vulnerabilities in network software to find and access vulnerable hosts. One of the most common forms of exploit is the buffer overflow attack.

Related news articles

Bumper crop of October patch releases

Busy weeks for admins as Patch Tuesday joined by Adobe fixes, and Mozilla announces plug-in checking plans.

16 October 2009

Patch Tuesday brings little relief from browser exploits

Six fixes issued, but new IE zero day emerges along with Firefox flaw.

15 July 2009

Another IE zero day exploited

Second DirectShow vulnerability in six weeks labelled 'extremely critical'.

07 July 2009

Gumblar compromise growth continues

Dominant web threat infecting still more vulnerable sites.

20 May 2009

March Patch Tuesday followed by PDF viewer patches

Major kernel issue and PDF problems fixed, spreadsheet software remains vulnerable.

12 March 2009

  see all related news stories

Poll

Do you use the same password(s) across multiple websites?
I use the same password for all sites
I have a number of passwords but use the same for some sites
I use a different password for each site
I don't sign up to any sites that require a password

Leave a comment
View 4 comments
Jobs Recruit Sidebar

VB100 certification

VB100 This month VB's test team put 26 products to the test on Windows Server 2008. John Hawes has the full results.
See full results.
Virus Bulletin currently has 190,920 registered users.